NT user authentication

Luke Kenneth Casson Leighton lkcl at switchboard.net
Thu Dec 3 18:46:34 GMT 1998

On Thu, 3 Dec 1998, Andrej Borsenkow wrote:

> >
> > any user not explicitly mapped in by "domain user map" is checked against
> > the PDC.  if the account does not exist on the PDC, _then_ it is treated
> > as a local user.
> >
> 1. NT WS user != NT Domian user even if the name is the same.

true, they are in different  SAM databases.

> Why you deny it     to SAMBA?

deny what?  sorry, your question is ambiguous.

> 2. If NT domain has trusted domains and any user from these domains tries to
> connect,
>    he will be accepted by PDC. And if his name happens to exist in Unix, he
> will be

not on the main branch, he darn well won't.

in the future, a trusted domain user will *have* to have an entry in
"domain user map" of the format unique_unix_name=DOMAIN_NAME\domain_user.

More information about the samba-ntdom mailing list